Network Security Engineer
Resume:
AMRUTH VARANASI
Denton, TX Email: ***************@*****.*** Tel: 469-***-****
PROFESSIONAL SUMMARY
Results-driven and Cisco Certified Network Engineer with 5+ years of hands-on experience in designing, implementing, and maintaining complex, high-performance networks for both enterprise and data center environments.
Skilled in configuring and troubleshooting a wide array of networking technologies, including Cisco Nexus switches, ASR/ISR routers, Cisco Meraki cloud-managed networks, Fortinet, Palo Alto firewalls, and Juniper MX routers.
Proficient in routing protocols (BGP, OSPF, EIGRP), VLANs, STP, and network security technologies such as VPNs, IPsec, IDS/IPS, and ACLs.
Expertise in firewall management, network segmentation, and performance optimization to ensure robust network security and high availability.
Experienced in AWS cloud technologies (EC2, VPC, VPN), cloud networking, and SDN with hands-on experience in implementing and managing scalable network architectures.
Proven ability to analyze complex network challenges, troubleshoot performance issues, and implement effective solutions with minimal user disruption, adhering to ITIL processes.
Proficient in utilizing network monitoring tools such as SolarWinds, Cisco Packet Tracer, Nagios, Meraki Dashboard, and Wireshark to proactively monitor and optimize network health and performance. CERTIFICATIONS
CCNA - Cisco Certified Network Associate
SKILLS
Networking Fundamentals: OSI Model, TCP/IP, Routing, Switching, VLANs, Subnetting, Network Troubleshooting
Network Hardware & Software: Routers, Switches, Firewalls (Palo Alto, Checkpoint), Cisco Meraki Cloud-Managed Devices, Wireless APs, Network Management Software
Routing Protocols: OSPF, EIGRP, BGP, RIP, HSRP, VRRP, Static Routing
Switching Equipment: Cisco Catalyst (2900XL, 3500XL, 2950, 3550, 3750)
Switching Protocols: LAN, VTP, STP, PVST, MST, Inter-VLAN Routing, Multi-Layer Switching, VPC, VSS, VXLAN
Network Protocols: Knowledge of various network protocols, such as DNS, DHCP, HTTP, SMTP, and FTP
Network Security: Access control, Authentication, Encryption, Firewalls, IDS/IPS, SSL, and VPNs
Monitoring Tools: Wireshark, SolarWinds, Nagios, Cisco Packet Tracer, PRTG, Meraki Dashboard
Virtualization: VMware, Hyper-V, VXLAN, NVGRE
Cloud Platforms: AWS, Azure, Hybrid Networking, SDN
Container Technologies: Docker, Kubernetes
Version Control: Git, Subversion
Change Management: ITIL-based Change Management, ServiceNow, Jira, Risk Assessment & Impact Analysis
Programming & Automation: Python, Java, Ansible
Microsoft Office: Visio, Excel, PowerPoint, Word EDUCATION
Master of Science in Information Systems and Technology University of North Texas
Bachelor of Technology in Computer Science
Jawaharlal Nehru Technological University
PROFESSIONAL EXPERIENCE
Network & Security Engineer Cloud 88 01/2025 – Present
Engineered and deployed Cisco routers and Layer 3 switches, implementing OSPF, EIGRP, and BGP for dynamic routing and optimal path selection.
Configured Layer 2 switches using VLAN, STP, VTP, DTP, Link Aggregation, and switch port security protocols.
Designed and deployed mesh network architectures to extend Wi-Fi coverage in challenging physical environments.
Implemented and configured advanced network security solutions (firewalls, VPNs, IDS/IPS) to enhance network security posture.
Expertise in implementing and managing security policies and access control lists (ACLs).
Knowledge of security compliance standards such as PCI DSS, HIPAA, or GDPR.
Proficient with AWS EC2 instances, VPCs, VPC Peering, Direct Connect, VPN, and load balancing.
Performed backup, restoration, and IOS upgrades for routers and switches.
Documented network changes, upgrades, and maintenance procedures, ensuring clear records for implementation and user acceptance testing.
Collaborated with field technicians during maintenance windows to ensure proper physical installation of access points.
Ability to configure and manage next-generation firewalls for advanced threat protection.
Skilled Network Engineer with expertise in Cisco infrastructure design. Proficient in routing protocols (BGP, OSPF).
Configured, monitored, and troubleshooted Cisco Meraki cloud-managed networks, including wireless access points (MR), security appliances (MX), and switches (MS).
Utilized Meraki Dashboard for centralized management, network analytics, firmware updates, and zero-touch provisioning.
Troubleshot network issues during or after access point migration, including connectivity failures and registration errors with Meraki cloud.
Implemented and troubleshot LAN/WAN networking systems, focusing on optimization and documentation.
Conducted proactive monitoring and maintenance, disaster recovery exercises, and core network repairs.
Secured networks with firewalls, NAT/PAT, IPsec, and site-to-site VPNs.
Utilized tools such as Wireshark, SecureCRT, and Meraki Dashboard to conduct remote diagnostics.
Configured and managed application layer gateways (RTP, RTSP, FTP, DNS, HTTP) and DHCP.
Integrated network monitoring tools like Nagios and PRTG for real-time performance visibility. Network Engineer Verizon Wireless Systems 06/2023 – 11/2024
Implemented, configured, and troubleshot routing protocols such as EIGRP, OSPF, and BGP.
Collaborated with local IT teams to troubleshoot performance and bandwidth problems and prioritize traffic to enhance application response times.
Executed planned network infrastructure installations and configurations during relocations.
Configured and installed LAN switches and wireless network infrastructure, including cable uplinks and user connections.
Worked with Cisco ASA 5525 firewalls, managing ACL security in multi-VLAN environments.
Utilized APIs and tools like Wireshark for network issue troubleshooting.
Backed up and restored Cisco IOS from TFTP servers, performing upgrades as needed.
Knowledge of SNMP monitoring and alerting for proactive network management.
Ability to analyze network traffic patterns and optimize network performance.
Familiarity with log management systems for centralized logging and analysis of network events.
Developed optimum IP Addressing schemes, VLAN tables, and network documentation and diagrams Visio.
Experience with implementing and monitoring security protocols such as SSL/TLS, IPsec, and VPNs.
Good experience with NMS, and NPS using maintaining and monitoring network devices.
Hands-on experience in subnetting and VLSM, VTP, VLAN trunking protocol, MPLS LDP TDP.
Proficiency in designing and implementing scalable and resilient network architectures.
Experience with network capacity planning and performance optimization.
Knowledge of network segmentation and micro-segmentation for enhanced security.
Facilitated end-to-end connectivity implementation and user acceptance testing (UAT). Environment: Cisco 3925, 2620, 1900 routers, Cisco 3750, 2950 Switches, Routing protocols: EIGRP, RIP, OSPF, BGP, FHRP: HSRP, Sniffing Tools: Ethereal, Wireshark, Port Security, SRX Firewall, VLAN, 802.1Q Trunking, Cisco ASA 5500 Network Engineer Coforge 01/2019 – 12/2021
Designed and implemented 20+ enterprise networks, improving connectivity and reducing downtime by 35%.
Configured and optimized Cisco ISR-4000, Nexus, Juniper MX routers, ensuring 99.9% network uptime.
Managed RIP, EIGRP, OSPF, IS-IS, and BGP routing protocols, enhancing network scalability.
Deployed MPLS and SD-WAN (Cisco Viptela), improving application performance and reducing latency by 25%.
Implemented HSRP and VRRP for redundancy, reducing failover time by 40%.
Strengthened network security by integrating Check Point firewalls and Cisco ASA, decreasing security breaches by 30%.
Monitored and analyzed network traffic using NetFlow and Wireshark, reducing incident response time by 30%.
Configured Cisco Prime Infrastructure for automation and monitoring, decreasing manual intervention by 20%.
Provided Level 2/3 network support, troubleshooting 90% of critical incidents within SLA timeframes.
Maintained and optimized Linux (CentOS, Ubuntu), Windows Server, and Active Directory for authentication management.
Conducted network performance tuning, increasing overall bandwidth efficiency by 20%. Environment: Cisco ISR 4000, Cisco Nexus (3K/5K/9K), Juniper MX Series, Cisco ASA 5500-X, Check Point NGFW, Cisco Prime Infrastructure, Cisco Viptela SD-WAN, HSRP, VRRP, OSPF, EIGRP, BGP, IS-IS, MPLS, RIP, NetFlow, Wireshark, SNMP, Linux
(CentOS, Ubuntu)
Contact this candidate